Mock Api Skill

Security checks across malware telemetry and agentic risk

Overview

The skill appears to be a coherent mock API helper, with one configuration note about network exposure rather than evidence of malicious behavior.

Install only if you are comfortable running a local mock server. Prefer binding it to 127.0.0.1 for local development, and use 0.0.0.0 only when you intentionally want other machines on the network to reach it.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The documentation states the default host is 0.0.0.0, which binds the mock API to all network interfaces, but it does not warn users that this makes the service reachable from other machines on the network. For a mock server that may echo request data and expose test endpoints, this increases the chance of unintended exposure of development data or internal testing services.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal